Pyroll Pakkaukset Group Oy Privacy Policy
Data Controller
Pyroll Pakkaukset Group Oy (3205129-1).
Contact person for registry matters:
Arto Kvick
Pyroll Pakkaukset Group Oy
Kalliotie 2
FI-04360 Tuusula
security@pyroll.com
Purpose of Personal Data Processing
Personal data is processed for managing and administering customer relationship matters (offering, selling, delivering and invoicing products and services, as well as handling possible support requests and complaints).
Information is not disclosed to third parties.
Personal Data Categories Processed
Basic personal information and contact details (first name, surname, email address, phone number, employer and job title)
Regular Data Sources
Personal data is collected from the data subjects themselves.
Personal Data Retention Period
Data is retained for as long and to the extent necessary in relation to the purpose for which the personal data was collected (e.g. customer relationship, offered solutions/services, newsletter subscription).
At minimum, data is retained for the time required by law.
Information is not disclosed to third parties. However, information may be disclosed in accordance with statutory information disclosure requests by authorities.
Data Transfer Outside the EU or EEA
Personal data is not generally transferred outside the EU or EEA.
Delivering certain products and services requires data transfer outside the EU, these services are:
- Website analytics: Google Analytics and Microsoft Clarity (United States)
- Newsletter: Mailchimp (United States)
The basis for transfers is standard contractual clauses approved by the European Commission. We have assessed that data transfer regarding these aforementioned services does not endanger personal data.
Registry Protection Principles
Databases containing personal data are on a server stored in a locked space, which can only be accessed by designated personnel authorized for access due to their duties. The server is protected with appropriate firewall and technical protection.
Access to databases and systems is only granted with separately issued personal user IDs and passwords. The data controller has limited access rights and authorizations to information systems and other storage platforms so that only persons necessary for their lawful processing can view and process the data.
The data controller’s employees and other persons have committed by separate agreement to comply with confidentiality obligations and keep secret the information they receive in connection with personal data processing.
Data Subject Rights
The data subject has the following rights under the EU General Data Protection Regulation:
- Right of access: the data subject has the right to inspect data concerning the data subject and demand correction and completion of possible errors.
- Right to object: the data subject has the right to object to data processing if data has been processed unlawfully or without authorization.
- Right to erasure: the data subject has the right to request deletion of personal data concerning the data subject to the extent that they are not necessary for the data controller’s tasks.
- Right to data portability: the data subject has the right to receive transferable personal data concerning themselves in a machine-readable format for delivery to another data controller, if the data is transferable under data protection legislation.
- Right to lodge a complaint: The data subject has the right to file a complaint with the Data Protection Ombudsman if the data subject considers that the data controller has violated applicable data protection legislation in personal data processing.
Cookies
The website uses the following cookies:
| Eväste | Käyttötarkoitus |
|---|---|
| _ga | Google Analytics: seuranta ja analytiikka. |
| _ga_* | Google Analytics: seuranta ja analytiikka. |
| _gid | Google Analytics: seuranta ja analytiikka. |
| moove_gdpr_popup | Toiminnallinen: Evästevalinnan tallettaminen. |
| pll_language | Toiminnallinen: Kielivalinnan tallettaminen. |